Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
File: aBFGMD9XUewN_C71R6qyR69OaB8.mft (raw, json)
Hash identifier: 6cZTadLeyW5lMO9lFSZv1HyGEVynk3cqGM8ivmWVW3Q=
Subject key identifier: 31:65:EA:BB:A1:1A:6B:F8:A0:66:24:8A:A1:98:FC:06:43:49:73:95
Authority key identifier: 68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
Certificate issuer: /CN=681146303f5751ec0dfc2ef547aab247af4e681f
Certificate serial: 0197B6A17A213FE552E86D16A7EC1F18E83F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
Manifest number: 0C95
Signing time: Sat 28 Jun 2025 13:02:04 +0000
Manifest this update: Sat 28 Jun 2025 13:02:04 +0000
Manifest next update: Sun 29 Jun 2025 13:02:04 +0000
Files and hashes: 1: aBFGMD9XUewN_C71R6qyR69OaB8.crl (hash: wK9D3vC4g9dBdpYwb6PDtOJVpv2M+3yvcFVU+3nQJq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:7a:21:3f:e5:52:e8:6d:16:a7:ec:1f:18:e8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681146303f5751ec0dfc2ef547aab247af4e681f
Validity
Not Before: Jun 28 13:02:04 2025 GMT
Not After : Jun 29 13:02:04 2025 GMT
Subject: CN=3165eabba11a6bf8a066248aa198fc0643497395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ba:13:91:b2:73:dd:37:10:07:d1:90:46:95:
59:53:ef:73:28:b3:8c:c0:e1:23:9b:b0:80:d7:ee:
f4:1e:ab:26:96:b9:ec:80:08:63:0c:31:6d:38:5a:
9f:31:c9:a5:3c:60:eb:5a:19:a2:1c:34:21:cc:1a:
a5:2c:ac:d6:bf:03:56:ba:e3:14:02:1e:74:93:a8:
5b:6d:72:21:74:95:c6:45:6f:d4:ee:96:4e:de:86:
23:7e:27:24:70:f2:b6:ac:a3:a9:1c:c1:88:4f:d7:
b0:71:80:f8:78:47:b3:32:cc:b0:89:4d:04:a8:f5:
02:5c:60:66:80:12:78:35:c0:7d:13:d1:3d:10:89:
df:ed:b9:d3:a7:a0:68:6e:a2:34:95:0b:e5:ba:49:
78:06:80:0e:9b:2e:0c:eb:7b:88:e2:fd:fc:2f:e2:
80:c5:1a:5f:ac:ab:37:41:74:d6:17:46:dd:b9:86:
89:b9:95:5b:1a:39:4f:7d:5e:aa:ab:a4:81:f3:ae:
31:17:b0:d8:14:32:41:78:d8:f5:ac:fa:5b:01:80:
eb:3d:a2:c6:fb:13:2b:c9:6e:d6:40:96:17:28:a9:
ac:02:7b:0b:db:b4:30:55:a8:59:c9:ab:3e:38:19:
81:ae:e3:20:d3:72:80:17:6b:7d:38:d8:09:5b:e5:
d0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:65:EA:BB:A1:1A:6B:F8:A0:66:24:8A:A1:98:FC:06:43:49:73:95
X509v3 Authority Key Identifier:
keyid:68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:e8:49:05:0a:f3:81:e0:5c:da:57:94:89:12:7a:9e:1c:6b:
2b:e9:a4:29:76:f3:11:be:06:31:61:3b:02:a4:75:7f:72:54:
c6:9c:f3:26:fa:19:ac:ec:40:82:0f:24:cf:d1:9d:f7:b8:cc:
bc:cd:60:7b:9b:2e:0a:df:d1:ad:f3:57:24:95:8e:c6:bd:14:
af:78:95:24:f9:7b:70:25:5b:55:54:52:4b:b4:c9:17:f2:1d:
e9:2c:18:bb:93:7e:88:7b:59:f8:0f:96:a8:73:6a:9b:ff:cd:
ef:a3:2d:f7:0e:2d:f9:38:10:18:7b:23:d4:f9:a3:29:31:22:
ed:74:f0:94:ec:da:c3:43:5f:e6:f4:da:f8:e4:42:07:4e:45:
1f:fb:28:5a:3e:d5:3d:9c:89:a4:ad:96:b8:4c:f4:54:3f:1c:
a6:28:23:b5:9e:15:e8:c9:e1:1a:28:c7:f4:2c:60:a3:d3:25:
76:c7:ba:14:2e:0b:36:2e:15:e1:f3:09:78:0c:b2:19:42:45:
08:82:72:5f:9b:a5:0a:db:aa:c4:d9:88:41:b2:99:0d:a1:dd:
ea:50:3d:0d:9b:78:35:81:39:78:b3:a7:9b:0b:99:07:91:0f:
57:07:c0:87:96:07:a3:2c:28:20:c0:01:29:0d:21:f3:d5:03:
cf:da:f9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:27 2025 by rpki-client